Node.Security

Security Audit of PapaParse

ISGroup SRL performed an automated Code Review (not a real Static Analysis, more a grep-on-steroid) of this NodeJS project in order to identify potential security vulnerabilities. We do not guarantee that all the findings are valid, and for sure there are plenty of false-positives and false-negatives (undetected issues) but it's free and your project could benefit from this security analisys. The following data is also available in JSON format!

Possible Security Issues

Issue

Description

Line

File

Server Side Injection(SSI) - setTimeout()

User controlled data in 'setTimeout()' can result in Server Side Injection (SSI) or Remote Code Execution (RCE).